Behavioral task
behavioral1
Sample
bdf8e0421d4ab8232fd8b7502868bed0N.exe
Resource
win7-20240704-en
General
-
Target
bdf8e0421d4ab8232fd8b7502868bed0N.exe
-
Size
59KB
-
MD5
bdf8e0421d4ab8232fd8b7502868bed0
-
SHA1
f93a476696e6d2319a2924fe4d82c128e5272cba
-
SHA256
9aa0b5a42c92fd508f0e7cb0d5283702af541386fe9d72879286f674dff1044e
-
SHA512
94750e5fbea57858244c258afc40e53ae443295c24509f3fa4676314af803e90c00d7777408a339fc80cef592b8d2f843d2decd8846520b0f6f1c13181db8f77
-
SSDEEP
1536:x+nnz2/x0evObr46NKutFW0JJSr/0LYLE7E:x+nnOx0eWbrlNnD5SI88E
Malware Config
Signatures
-
resource yara_rule sample upx -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource bdf8e0421d4ab8232fd8b7502868bed0N.exe
Files
-
bdf8e0421d4ab8232fd8b7502868bed0N.exe.exe windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Sections
UPX0 Size: - Virtual size: 176KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 58KB - Virtual size: 60KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE